Sed ut perspiciatis unde. Cybersecurity researchers from Sysdig recently uncovered a new cryptojacking campaign that targeted Uncommon Amazon Web Services (AWS) services.Cryptojacking is a type of cyberattack in which the threat actor secretly installs a cryptocurrency miner on a target endpoint. While not malicious per se, miners bring profit to their owners, while the victims are left with inflated electricity and data bills, and a virtually unusable device (until the cryptojacker is removed). There are multiple Uncommon Aws services, including AWS Amplify, AWS Fargate, and Amazon SageMaker, that were targeted here.This campaign was dubbed AMBERSQUID. “The AMBERSQUID operation was able to exploit cloud services without triggering the AWS requirement for approval of more resources, as would be the case if they only spammed EC2 instances,” said Alessandro Brucato, Sysdig security researcher.“Targeting multiple services also poses additional challenges, like incident response, since it requires finding and killing all miners in each exploited service,” the researchers added. Further investigation found that the attackers were mostly likely of Indonesian origin, as some of the scripts and usernames were written in the Indonesian language. By analyzing blockchain data associated with the cryptominers, the researchers were able to determine that the attackers generated at least $18,000 in profits. On the other hand, they estimate that AMBERSQUID could cost more than $10,000 a day, if it were scaled to target all AWS regions. Cryptojacking has been around for as long as cryptocurrency itself. Earlier this year, Microsoft found hackers brute-forcing their way into Linux-based IoT devices, and using them to mine cryptocurrencies. They even made sure that no rival cryptojackers were installed on the vulnerable endpoints. By far the most popular cryptojacking software is XMRig, a miner that generates a token known as Monero, or XMR. This is a token with a strong emphasis on privacy, with some arguing that it’s absolutely untraceable.Source link Save my name, email, and website in this browser for the next time I comment.By using this form you agree with the storage and handling of your data. * Δdocument.getElementById( "ak_js_1" ).setAttribute( "value", ( new Date() ).getTime() );Tech dedicated news site to equip you with all tech related stuff.I agree that my submitted data is being collected and stored.✉️ Send us an emailTechToday © 2023. All Rights Reserved.TechToday.co is a technology blog and review site specializing in providing in-depth insights into the latest news and trends in the technology sector.TechToday © 2023. All Rights Reserved.Be the first to know the latest updatesI agree that my submitted data is being collected and stored.